Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 2 subscribers
  • Views 3095 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN users SSH to server

egblue
I've been trying to get VPN users to access a server behind the Astaro firewall.
I created a PF rule:
SSL VPN -> ANY -> ANY
But I still keep getting reject.
Here is a log line:
 
2010:07:23-09:39:38 207 ulogd[3266]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="50" seq="0" initf="br0" outitf="br0" dstmac="00:1a:8c:15:65:10" srcmac="00:11:5d:6f:30:00" srcip="***.***.***.***(the firewall's hostname)" dstip="***.***.***.***(server behind firewall)" proto="6" length="64" tos="0x00" prec="0x00" ttl="62" srcport="50024" dstport="22" tcpflags="SYN"

Thanks in advance!


This thread was automatically locked due to age.
Parents
  • 0
    I still don't understand why the Astaro interfaces are bridged, where the clients are, whether it's the Astaro doing the SSL VPN and the subnets involved.  You can change the IPs, like 10.20.30.0/24 for a private subnet and 68.78.98.1 for a public IP, but it's hard to see what's wrong without more specifics.

    Cheers - Bob
Reply
  • 0
    I still don't understand why the Astaro interfaces are bridged, where the clients are, whether it's the Astaro doing the SSL VPN and the subnets involved.  You can change the IPs, like 10.20.30.0/24 for a private subnet and 68.78.98.1 for a public IP, but it's hard to see what's wrong without more specifics.

    Cheers - Bob
Children
No Data